______________________________________                                    a      q        j        d       n      i01100001                                                                         01110001 01101010 01100100                                                                          01101110                                                                         01101001i      h01101001                                                                         01101000                                                           H      *        q        #       8p                                 01001000                                                                         00101010 01110001 00100011                                                                          00111000                                                                         01110000                          m      [                                                                  01101101                                                                         01011011                                                           ______________________________________

The bit sequence for the word "it," 01101001 01110100, is hidden in the selected byte sequences by least significant bit conversion:

______________________________________                                    01100000                                                                         01110001 01101011 01100100                                                                          01101111                                                                         01101000                          01101000                                                                         01101001                                                           01001000                                                                         00101011 01110001 00100011                                                                          00110010                                                                         01110001                          01101100                                                                         01011010                                                           ______________________________________

The characters represented by the new byte sequences are:

'qkdohhiH+q#8ql\

These characters are now placed back into the stream from whence they came, giving a new data stream (the replacement characters are underlined):

'ku245q9S53'%14hk2q356@$%d070c6*&56)(oohury24r0q34hkjh3982i' H+37Hqdhg(dg&h#daghhhaead43y3q8uQ#8y3d203emaqe3l'zd+w[2oh\2

The file to be `stegged`, i.e., the data stream in which the message will be hidden, is selectable by the user. This file can be in many formats, but for effective security it should be the type of file that can be modified without such modification being obvious. In addition to the PRNG file previously mentioned, other preferred formats are: graphics (BMP, GIF, JPG, etc.), sound (WAV, RA, AIF, MIDI, etc.), and video (MPG, MOV, etc.). Depending on the degree of modification, these files might be usable for graphics, sound, or video in their modified form without noticeable performance degradation, thus further obscuring the fact that they contain encoded data.

The system also has a number of other features which give the user a range of selectable security functions:

Toolbar User Interface (TUI)--The system utilizes a floating toolbar that gives the user simple accessibility to security functions throughout the operating system environment. FIG. 6 shows an example of selections available from the toolbar. Item 31 is the toolbar's handle which enables both the drag and docking of the toolbar in the environment and, by right mouse clicking on the handle, allows for the configuration of the toolbar and other setup options. Items 32a and 32b are the encrypt and decrypt buttons which allow users to select both files and data from outside the application to be encrypted by the invention. Item 33 is the active window protection button. Item 34 is the place holder for other features configurable for use on the toolbar with the default being the exit function.

Selective Text Encryption--The system allows the user to highlight and select portions of the text, including paragraphs, sentences, even words, to be encrypted within a plaintext document. Delimiters are used so that a user decrypting the selected text does not have to identify its exact boundaries.

Secure Delete--In most computers, deleted files are still retrievable after deletion because only the file's index pointer information has been removed, whereas the file itself is still intact. The system provides a secure deletion facility that will overwrite a file first with a set such as all 0's and then with the set's compliment such as all 1's, and then with one or more overwrites of random data before deleting the file. This protects the user from having files retrieved from the drive after deletion. This function is selectable by the user.

Digital Signatures--The system provides Digital Signature capability to its users. Digital Signatures verify the origin and document integrity using one way hash functions and the Signing key belonging to the user. The system generates a hash sequence based on the contents of a document and then encrypts it with the Signing key. This sequence can be checked by the recipient to validate the sender and the contents of the document by decrypting the hash sequence using the verification key, packaged with the user's public key, and then comparing the hash of the document to the one contained in the Digital Signature. Digital Signatures can be used on both plaintext as well as ciphertext messages.

Partial Screen Blanking--This provides a secure work environment by covering most of the active window with a graphic image. The active window is protected up to approximately the last 3/4 inch of the window. The graphic image acts like a window shade and can be manipulated using the mouse to cover more or less of the active window. This allows the user to continue entering data and have the rest of the document secured from view. This feature is especially useful when the screen is in an unsecured area, where "roving eyes" can be a problem. Partial screen blanking toggles on and off via a button on the TUI and can also be set to require a key to be toggled off.

Key Management--The invention utilizes a special key management system incorporating public and single key technologies with Digital signatures and certificate formats, combined with ease of use to allow easy integration of a public key communication system without the need for a fully implemented public key infrastructure. The invention utilizes hybrid encryption. Data is encrypted using a Pseudo Random Number Generator (PRNG) generated session key to create the message ciphertext. The session key is then encrypted using either a recipient's public key (for transmission security), or a predetermined user local key (for storage security). A header is added to the message ciphertext containing the encrypted session key and other information necessary for decryption purposes. The other information contained in the header includes algorithm identifiers, file name, time and date information, sender name, and a digital signature if that option is selected. The header is divided into protected areas and clear text areas where protected areas are also encrypted and clear text areas are the minimum information needed to decrypt the header and message ciphertext upon receipt without undermining the security of the system.

Public keys are transferred between corespondents via a key transfer utility included in the invention that facilitates a transparent Internet and/or network-based transfer of public key information. The public keys are X.509 certificate formatted in compliance with the standards for compatibility with Certificate Authorities (CA's) and can also be digitally signed by the sender to provide a horizontal Web of Trust infrastructure. Transmitted public keys contain the public half of the public key pair, the verification key, sender username and e-mail address, and any authentication information available to the sender including previous senders' signatures and digital identifications provided by CA's. Public keys are maintained in a database where authentication information is also associated with each public key.

The user's secret information includes the user's private half of the public key pair, the user's signing key and the user's local encryption key. These are secured locally by the user.

The system allows the user to utilize encryption and steganographic capabilities to both secure data and allow for innocuous messaging. As described above, a message or file is encrypted and steganography is used to encode the encrypted file into a graphic image, sound or movie file.

File compression--A file compression utility is provided for the encrypted file to reduce file sizes.

Secure Backup on Removable Media--This provides a method by which users can back up and store off-line on removable media important data such as personal decryption keys, Administrator keys, key pairs, or other highly confidential information and data. As shown in FIG. 7, data is input into the system, encrypted, and then encoded onto the removable media. FIG. 7 illustrates this process using two floppy diskettes. In a preferred embodiment, this process can be performed to multiple floppies and onto almost any removable media such as recordable CD-ROMs, Zip Disks, Back Up Tapes, etc. It can also be used with multiple locations of remote or local non-removable storage, although this might provide a lesser degree of security. Instep 36 the data, which could consist of personal keys or Administrator public key pairs, is input into the system. Instep 37 key management is performed to determine the encryption key(s) for the data, such as a public key for a system administrator and a randomly generated session key. The data is then encrypted instep 38 using an encryption algorithm as in FIG. 1 utilizing the keys fromstep 37. Atstep 39 the encrypted data is split into files corresponding to the number of removable media to be used. This splitting function involves taking bytes from the encrypted data and placing them into separate files such that each byte is placed in a different file than its adjacent bytes. For example, if three files were to be created using the splitting process instep 39, and `abedefghijklmno` was the starting file to be stored, the resulting split files would be: `adgjm`, `behkn`, and `cfilo`. This process eliminates unwanted exposure of partial ciphertexts in the event that the security of one or more of the split files is compromised. Instep 40, each split file is written to selected sectors of its removable media. The key produced instep 37 is used to choose the exact sector(s) on the removable media where the files are written. The keys themselves can also be written to one or more of the removable media, such as the first one. Both file(s) and keys can be written without headers. In step 41 the removable media is written to by a pseudo-random number generator (step 43) to "fill" the remaining sectors of the media with random noise. This filling process writes the random data to all sectors of the removable media except those previously written to. The removable media now contains the split files of the encrypted data masked into random noise. This process represents another form of steganography, since it entails the `hiding` of sensitive data among other, non-sensitive data.

Retrieval of the hidden data can occur by effectively reversing the aforementioned process: Key management is first performed to retrieve the relevant key(s) from the media. Then each split file is retrieved using the proper key(s), the multiple split files are merged, and decryption is performed on the merged file. This is basically a reversal of steps 38-40.

Additional security can be provided through additional means, such as storing each of the backup media in a different location, physically securing the backup media, or keeping the key(s) separate from all the backup media. Such variations are obvious and the invention does not depend on their use.

Administrative Features--The system provides the network administrator or security administrator with several features tuned to the corporate environment. The Administrator can block access of employees to certain features of the system, including secure deletion, steganography, etc. The Administrator is also given the capability to gain emergency access to files and E-mails generated by users on the network.

Decryption--Obviously, every encryption method also includes a decryption capability. The decryption is generally the equivalent of an encryption operation in reverse. The system of this invention can decrypt any message encrypted by the aforementioned methods, using the decryption method appropriate for each type of encryption. Multi-encrypted data is decrypted in the reverse order in which it was encrypted, using any decryption information available from the message itself.

Various means of accomplishing the secure data features described herein are possible. Since most of the procedures involve the manipulation of digital data, the preferred embodiment uses software as a means to perform the described functions. The use of firmware, or a combination of software and firmware, is also envisioned. The preferred embodiment operates in the Windows environment due to the extremely broad market acceptance of the Windows operating system. But the invention will operate equally well in other environments, including single- or multi-user operating systems and single- or multi-processor systems.

The invention maybe embodied in other specific forms without departing from the spirit of the invention or its essential characteristics. The present embodiments are to be considered as illustrative and not restrictive, the scope of the invention being indicated by the following claims rather than by the foregoing description. All changes which come within the meaning and the range of equivalency of the claims are intended to be embraced herein.